Security
Headlines

Headlines Latest CVEs

Headline

GHSA-g66v-3v62-g375: RosarioSIS improper access control vulnerability

RosarioSIS prior to version 10.9.3 has a vulnerability that allows a user to return to a page containing personally identifiable information (PII) and sensitive information even after logging out of the application by using the browser’s back button.

1 year ago

#vulnerability #ios #git

RosarioSIS improper access control vulnerability

Moderate severity GitHub Reviewed Published Apr 21, 2023 to the GitHub Advisory Database • Updated Apr 24, 2023

Related news

CVE-2023-2202: Security Fix browser loading cached page when page full reload (F5) +… · francoisjacquet/rosariosis@6433946

Improper Access Control in GitHub repository francoisjacquet/rosariosis prior to 10.9.3.

1 year ago

#web #ios #git #java #php #firefox

ghsa: Latest News

GHSA-g5x8-v2ch-gj2g: Vaultwarden HTML injection vulnerability

23 hours ago

GHSA-x7m9-mv49-fv73: Vaultwarden vulnerable to user impersonation

23 hours ago

GHSA-vprm-27pv-jp3w: Vaultwarden authenticated reflected cross-site scripting (XSS) vulnerability

23 hours ago

GHSA-5xh2-23cc-5jc6: Strawberry GraphQL has type resolution vulnerability in node interface that allows potential data leakage through incorrect type resolution

1 day ago

GHSA-675f-rq2r-jw82: JWK Set's HTTP client only overwrites and appends JWK to local cache during refresh

1 day ago